xterm-366-10.el9_6

エラータID: AXSA:2025-10445:01

リリース日: 
2025/07/11 Friday - 20:00
題名: 
xterm-366-10.el9_6
影響のあるチャネル: 
MIRACLE LINUX 9 for x86_64
Severity: 
Low
Description: 

The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.

Security Fix(es):

* xterm: code execution via OSC 50 input sequences (CVE-2022-45063)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-45063
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.

解決策: 

Update packages.

CVE: 
CVE-2022-45063
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. xterm-366-10.el9_6.src.rpm
    MD5: 1fe9b6478a47fe33503901260a972c08
    SHA-256: e22d9735064e8ff5e595024ed6ce34407adad63b7fb5e94e9e05d4f52ff6ca74
    Size: 1.40 MB

Asianux Server 9 for x86_64
  1. xterm-366-10.el9_6.x86_64.rpm
    MD5: ed49f777fffbb342c1dfee10b2f3b70c
    SHA-256: 42e7de324d7232c3bdc0e28ad8693d43f940ec1083ee23e61ba631f9191328dc
    Size: 613.00 kB
  2. xterm-resize-366-10.el9_6.x86_64.rpm
    MD5: 63c2097a47d3842fad7cc662350eab34
    SHA-256: 70d673fca07585557b0e589033d6a6173b6bf8c441b472ed87414ed2a4818812
    Size: 18.96 kB